Month: September 2018

One of the new Metacoda Security Plug-ins features arriving in version 6.1 is the Auth Domain Reviewer. Like the other reviewers, this plug-in is used for investigating, documenting and testing how a SAS metadata security feature has been used within a particular SAS platform deployment. When I’m reviewing metadata security for a SAS platform I like to look at it from several different perspectives and authentication domains is one of them. I like to see:

What authentication domains have been added beyond the initial DefaultAuth?

How have they been used with respect to inbound logins?

How have they been used with respect to outbound logins and providing shared credentials for database access?

How have they been used with respect to 3rd party database system connections?

Are there any unused ones, possibly added by accident, that can be cleaned up?

A group content administrator is a user who has WriteMetadata permission for the respective group, and the group’s Portal permission tree. A group content administrator can share personal content with the group, and can edit or remove content that has been shared with the group. (Portal administrators have WriteMetadata permission for all group permission trees that are defined in metadata.)